Credi Pty Ltd – Privacy Policy

About this Policy

1.1 This policy sets out how Credi Pty Ltd (Credi) collects, uses and discloses your personal information.

1.2 If you disclose personal information to third parties this policy will not apply and you will be subject to the privacy policy of that third party.

1.3 By accessing or using Credi services you agree to the collection, use and disclosure of your personal information in the manner described in this policy.

1.4 Words defined in the Credi Terms and Conditions of Use have the same meaning in this Privacy Policy.

2 Credi and privacy

2.1  Credi is bound by the Privacy Act (1988).

3 What personal information is collected?

3.1 Credi collects personal information to assist it and its related bodies corporate to conduct their activities and provide the range of services they offer.

3.2 Personal information collected by Credi may include:

3.2.1 identification details, which may include name, birth date, gender, security questions and answers;

3.2.2 bank account and credit account details;

3.2.3 user ID’s and passwords;

3.2.4 services provided to you, including saved items and searches

3.2.5 business information, such as ABN and licence number;

3.2.6 information about the devices on which you visit the Credi Network, and your activities on those sites;

3.2.7 third party account details (for example where you sign in through a social network);

3.2.8 social profile information;

3.2.9 records and content of communications with Credi or any other person including records and content using Communications Services (as that term is defined in Credi’s Terms and Conditions of Use).  Please note that such records and content may be stored and scanned by Credi.

3.3 Legal Basis for Processing Personal Data Under General Data Protection Regulation (GDPR)

If you are from the European Economic Area (EEA), Credi Pty Ltd legal basis for collecting and using the personal information described in this Privacy Policy depends on the Personal Data we collect and the specific context in which we collect it.

Credi Pty Ltd may process your Personal Data because:

3.3.1 We need to perform a contract with you

3.3.2 You have given us permission to do so

3.3.3 The processing is in our legitimate interests and it’s not overridden by your rights

3.3.4 For payment processing purposes

3.3.5 To comply with the law

4 How is personal information collected?

4.1 Credi collects personal information in a number of ways, including:

4.1.1 directly from you when you provide information directly to Credi in person, by phone or in writing (whether electronic or otherwise);

4.1.2 directly from you when you communicate with Credi or any other person using Credi Communications Services;

4.1.3 from third parties such as:

4.1.3.1 Credi related companies;

4.1.3.2 operators of linked or served web sites, applications and advertising on the Credi Network;

4.1.3.3 social networks where you choose to share that information when creating an account;

4.1.4 from 3rd party data providers who have been directed by you to send us information on your behalf;

4.1.5 through use of Credi proprietary software in which personal information is stored;

4.1.6 from organisations identified or described under the heading “How is personal information disclosed”

5 How is personal information used?

5.1 Your personal information may be used for the following purposes:

5.1.1 to maintain appropriate business records;

5.1.2 to research, develop, improve and use within Credi products and services;

5.1.3 to pre-populate / customise / provide shortcuts on our websites;

5.1.4 to conduct surveys to determine use and satisfaction with Credi services;

5.1.5 to generate statistics in relation to the Credi Network;

5.1.6 for the purposes of feedback, reviews and ratings;

5.1.7 to promote and market special offers and other services to you;

5.1.8 for purposes connected with the operation of the Credi Network;

5.1.9 for staff training and quality assurance;

5.1.10 to personalise the site experience and / or the advertising you see when you visit sites within the Credi Network.

6 How is personal information disclosed?

6.1 Credi may disclose personal information to individuals and organisations other than Credi. The organisations to which we may disclose personal information include:

6.1.1 Credi staff and Credi’s related bodies corporate;

6.1.2 the public if you use publicly available Communications Services;

6.1.3 individuals and organisations that advertise with Credi if you submit an enquiry or seek certain services through Credi – depending on your enquiry these may include operators of Linked Sites;

6.1.4 outsourced service providers who assist Credi to provide its services including:

6.1.4.1 information technology providers;

6.1.4.2 marketing and market research advisers; and

6.1.4.3 professional advisers;

6.1.5 Service Providers
We may employ third party companies and individuals to facilitate our Service (“Service Providers”), to provide the Service on our behalf, to perform Service-related services or to assist us in analyzing how our Service is used.

These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

Analytics
We may use third-party Service Providers to monitor and analyze the use of our Service.

Google Analytics
Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Service. This data is shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network.

You can opt-out of having made your activity on the Service available to Google Analytics by installing the Google Analytics opt-out browser add-on. The add-on prevents the Google Analytics JavaScript (ga.js, analytics.js, and dc.js) from sharing information with Google Analytics about visits activity.

For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: https://policies.google.com/privacy?hl=en

Statcounter
Statcounter is a web traffic analysis tool. You can read the Privacy Policy for Statcounter here: https://statcounter.com/about/legal/

Behavioral Remarketing
Credi Pty Ltd uses remarketing services to advertise on third party websites to you after you visited our Service. We and our third-party vendors use cookies to inform, optimize and serve ads based on your past visits to our Service.

Google AdWords
Google AdWords remarketing service is provided by Google Inc.

You can opt-out of Google Analytics for Display Advertising and customize the Google Display Network ads by visiting the Google Ads Settings page: http://www.google.com/settings/ads

Google also recommends installing the Google Analytics Opt-out Browser Add-on – https://tools.google.com/dlpage/gaoptout – for your web browser. Google Analytics Opt-out Browser Add-on provides visitors with the ability to prevent their data from being collected and used by Google Analytics.
For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: https://policies.google.com/privacy?hl=en

Facebook
Facebook remarketing service is provided by Facebook Inc.

You can learn more about interest-based advertising from Facebook by visiting this page: https://www.facebook.com/help/164968693837950

To opt-out from Facebook’s interest-based ads follow these instructions from Facebook: https://www.facebook.com/help/568137493302217

Facebook adheres to the Self-Regulatory Principles for Online Behavioral Advertising established by the Digital Advertising Alliance. You can also opt-out from Facebook and other participating companies through the Digital Advertising Alliance in the USA http://www.aboutads.info/choices/, the Digital Advertising Alliance of Canada in Canada http://youradchoices.ca/ or the European Interactive Digital Advertising Alliance in Europe http://www.youronlinechoices.eu/, or opt-out using your mobile device settings.

For more information on the privacy practices of Facebook, please visit Facebook’s Data Policy: https://www.facebook.com/privacy/explanation

Payments
We may provide paid products and/or services within the Service. In that case, we use third-party services for payment processing (e.g. payment processors).

We will not store or collect your payment card details. That information is provided directly to our third-party payment processors whose use of your personal information is governed by their Privacy Policy. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information.

The payment processors we work with are:

Stripe
Their Privacy Policy can be viewed at https://stripe.com/us/privacy

6.1.5 entities to whom you request we send your information;

6.1.6 resellers of Credi services;

6.1.7 organisations involved in a sale/transfer of Credi assets, business or shares;

6.1.8 to assist government or regulatory authorities or police;

6.1.9 as we are required by law, for example pursuant to a subpoena or in accordance with unclaimed money legislation.

6.2 Where Credi provides information to a third party at your request (for example where you submit an enquiry), you acknowledge that your information will be handled by that third party in accordance with its privacy policy and not in accordance with the Credi privacy policy.

7 Maintaining personal information quality

7.1 Credi strives to maintain accurate and up-to-date records. To facilitate this, please let us know if any of your details change. You may update certain personal information through your membership account.

8 How to access your personal information

8.1 You generally have a right to access your personal information, subject to a few exceptions provided by law. If you wish to access your personal information please go to “contact us” link at the bottom of this page. Please remember to provide as much detail as you can as this will help us to find the information. There is no charge for this service, however you may be required to verify your identity before any information is released to you.

9 About security and personal Information

9.1 Credi takes reasonable steps to protect personal information collected from misuse, loss, unauthorised access, modifications or disclosure. Your personal information may be stored in hard copy documents, but is generally stored electronically on Credi’ systems.

10 Your Data Protection Rights Under General Data Protection Regulation (GDPR)

10.1 If you are a resident of the European Economic Area (EEA), you have certain data protection rights. Credi Pty Ltd aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.

10.2 If you wish to be informed what Personal Data we hold about you and if you want it to be removed from our systems, please contact us.

10.3 In certain circumstances, you have the following data protection rights:

10.3.1 The right to access, update or to delete the information we have on you. Whenever made possible, you can access, update or request deletion of your Personal Data directly within your account settings section. If you are unable to perform these actions yourself, please contact us to assist you.

10.3.2 The right of rectification. You have the right to have your information rectified if that information is inaccurate or incomplete.

10.3.3 The right to object. You have the right to object to our processing of your Personal Data.

10.3.4 The right of restriction. You have the right to request that we restrict the processing of your personal information.

10.3.5 The right to data portability. You have the right to be provided with a copy of the information we have on you in a structured, machine-readable and commonly used format.

10.3.6 The right to withdraw consent. You also have the right to withdraw your consent at any time where Credi Pty Ltd relied on your consent to process your personal information.

10.4 Please note that we may ask you to verify your identity before responding to such requests.

10.5 You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the European Economic Area (EEA).

11 Transfer of personal information outside of Australia

11.1 Some of Credi’ service providers are located outside of Australia. It may be necessary to disclose your personal information to those service providers for some of the purposes listed above. By providing Credi with your personal information, you consent to the disclosure / transfer of your personal information outside of Australia as set out in this privacy policy.

12 What if you don’t provide personal information?

12.1 If you choose not to provide personal information when requested, Credi may not be able to provide you with the full range of Credi services.

13 Credi Network, Linked Sites and personal information

13. 1 When you visit a website or use an application on the Credi Network, Credi records anonymous information such as IP address, time, date, referring url, and other referral information, device information and location, carrier, site interactions such as your access to website features, pages accessed, content, searching activities, lead submission, and files accessed and downloaded, type of browser and operating system.

13.2 Such information collected by Credi may be linked to other information Credi holds about a user, compiling a complete profile about Credi users’ browsing activities on the Credi Network.

13.3 Credi uses “cookies” and other methods to collect and store the information set out above. A cookie is a small file that stays on your computer until, depending on whether it is a sessional or persistent cookie, you turn your computer off or it expires (this may be as little as 30 days or up 2 years, or longer in some cases). Cookies may be used by Credi or by service providers engaged by Credi to provide you with the full range of services it offers, remember your preferences, remember the sites you visit on the Credi Network, measure and analyse usage of the Credi Network and for security. Persistent cookies may be used to identify the sites you visit on the Credi Network and to personalise the advertising that you see when you make future visits to that site or other sites. You may adjust your internet browser settings to disable cookies. If cookies are disabled Credi may not be able to provide you with the full range of Credi services.

13.4 The Credi Network may include links to third party web sites, co-branded web sites and applications served to the Credi Network by third parties (Linked Sites). The operators of Linked Sites may collect personal information through the use of cookies and otherwise. Credi is not responsible for Linked Sites and recommends you read the privacy policy of Linked Sites before disclosing your personal information.

14 What if I have a problem?

14.1 If you have a problem, complaint, want to change your personal information or just wish to enquire about privacy please contact us.

 

Location: Perth, Western Australia, Australia.
Postal Address: 2/51-57 Market Street, Fremantle WA 6160
Phone: +61 448 617 280
Contact: Tim Dean
Email: info@credi.com

 

Credi treats complaints relating to privacy extremely seriously. If you submit a concern or complaint, we will endeavour to deal with it comprehensively and reach an outcome with which all parties are satisfied. If you would like further information about privacy in Australia, please visit www.oaic.gov.au

How this policy changes

This policy may change over time. All changes will be published on this website.

 

CD004v1.4 – updated on 28 May 17 – credi.com